http://marcdekeyser.com

October 2015 Entries

IIS ARR: Installing the reverse proxy server

Step 1: Open Server manager Step 2: Install the “web server (IIS)” component. Accept all defaults. step 3: Download the web platform installer Step 4: Run the WPi Step 5: Search for the Application Request Routing component Step 6: Click on “Add” next to Application Request Routing 3.0 Step 7: Click on “Install” Step 8: Accept the Prerequisites list Step 9: Wait for the download and installation to finish Step 10: Click “Finish” Step 11: Open IIS manager Step 12: Select your server in the Internet ......

Office 365: Authentication

When we’re talking authentication the first thing that pops up in our minds is Active Directory. For years, active directory has been the staple identity provider for most companies and the foundational building block upon which most applications were built. With Azure and O365, we need to think about the different authentication methods that could be. Are we going to an “all in the cloud” model? Federated identities? Hybrid active directory? Or maybe something else completely? All in the Microsoft ......

Exchange Hybrid deployment scenarios

Hybrids: The final frontier. These are the voyages of the starship Enterprise. Whether Exchange or Lync, hybrids are the wave of the future, something everyone will have to start dealing with at one point in their career. With Exchange Hybrids in particular, we enable coexistence between our on-prem exchange environment and Office 365’s Exchange Online, enabling features such as: Secure mail routing Unified GAL Free/Busy sharing Centralized SMTP control & mail box management A single Outlook ......

Coexistence between Exchange forests (without trusts…) -- Part 1: Conceptual

Imagine a scenario where you acquire a company in a different country and they don’t want to be absorb in your IT environment (because they don’t like it, have regulatory requirements that can’t be met or are just trying to be difficult) but you do need some fashion of coexistence between the two Exchange organizations… After all, you’re part of the same company now and people should be able to find them in the GAL and do free/busy look ups!


Coexistence between Exchange forests (without trusts…) -- Part 11: References & Sync Script

· How to license FIM 2010 & MIM 2016 http://social.technet.micro... · Global address list synchronization walkthrough: https://technet.microsoft.c... Scripts I did not write these scripts myself, found them only on https://social.technet.micr... Going through them, they get the ......

Coexistence between Exchange forests (without trusts…) -- Part 10: Configuring Free/Busy

 Note: In order for Free/Busy to work Outlook Anywhere needs to be enabled in both forest and auto discover needs to be functioning properly. Additionally, the external URLs for EWS need to be configured.  Note: A service account in each forest is required for authentication purposes. This account should not have a mailbox and the minimum amounts of rights possible. In the example configuration it has been configured as “\svc_fb”. Step 1: Open the Exchange management shell  Note: Step 2 relates ......

Coexistence between Exchange forests (without trusts…) -- Part 9: Synchronization!

 Note: The entire list must be run through in order and progression to the next step cannot be done until the current step has completed for all Management agents! Step 1: Right click the management agent, select “Run” and “Full Import (Staging Only)”. Step 2: Right click the management agent, select “Run” and “Full Synchronization”. Step 3: Right click the management agent, select “Run” and “Export”. Step 4: Right click the management agent, select “Run” and “Delta Import”.  Note: Step 4 (Delta ......

Coexistence between Exchange forests (without trusts…) -- Part 8: Enabling Provisioning

 Step 1: Open the “Synchronization Service Manager”. Step 2: Open the Options from the Tools menu. Step 3: Under Metaverse Rules Extensions, verify that Enable metaverse rules extentions box is checked. Step 4: Verify that the Enable Provisioning Rules Extension box is checked. Step 5: Click “OK”. Coexistence between Exchange forests (without trusts…) -- Part 7: Creating Synchronization Agents Coexistence between Exchange forests (without trusts…) -- Part 9: Synchronization ......

Coexistence between Exchange forests (without trusts…) -- Part 7: Creating Synchronization Agents

US GALMA – Exchange 2010 Step 1: Open the “Synchronization Service Manager”. Step 2: Click on the “management Agents Button. Step 3: From the Actions menu, click Create. Step 4: In “the management agent designer”, From the drop down list, select “Active Directory global address list (GAL)”. Enter a name to identify the management agent by & click “next”. Step 5: On the “Configure Directory Partitions” pane, tick the directory partition displayed and click “Containers”. Step 6: Check all containers ......

Coexistence between Exchange forests (without trusts…) -- Part 6: Installing the MIM 2016 Synchronization Service (GALSync)

Step 1: In the unpacked MIM installation folder, navigate to the Synchronization Service folder. Step 2: Run the MIM Synchronization Service installer. Follow the guidelines of the installer and complete the installation. Step 3: In the welcome screen – click Next. Step 4: Review the license terms and if you accept them, click Next. Step 5: In the feature selection screen click Next. Step 6: In the Sync database configuration screen, select: 1. The SQL Server is located on: This computer. 2. The ......

Coexistence between Exchange forests (without trusts…) -- Part 5: Preparing the GALSync Server

Installing the MIM server Prerequisites  Note: The exchange 2007 management tools need to be installed on the MIM server for it to be able to provision users correctly.  Note: In order for the GALSync process to access the exchange 2010 environment the server(s) that will be used to create objects with will have to be added to the WinRM ‘Trusted Hosts’ list (Due to the lack of a two-way trust) Installing prerequisites import-module ServerManager Install-WindowsFeature Net-Framework-Features,rsat... ......

Coexistence between Exchange forests (without trusts…) -- Part 4: Preparing the US Exchange 2010 environment

Create receive connector Step 1: Open the exchange management console Step 2: Click on Hub Transport under Server Configuration Step 3: In the Actions pane click on New Receive Connector… Step 4: In the Introduction page, under Name, enter a name for the receive connector. From the drop down box under Select the intended use for this receive connector, select Internal. Click next. Step 5: On the Remote Network Settings page, remove the default remote IP addresses and enter the IP address of the server(s) ......

Coexistence between Exchange forests (without trusts…) -- Part 3: Preparing the UK Exchange 2007 environment

Creating scoped send connectors in Exchange 2007 and Exchange 2010. Receive connector for cross forest traffic


Coexistence between Exchange forests (without trusts…) -- Part 2: DNS Forwarders

Creating conditional forwarders Step 1: Open DNS manager Step 2: Select Conditional forwarders Step 3: Right click “Conditional Forwards" and select “New Conditional Forwarder…” Step 4: Enter the dns name the forwarder is being created for Step 5: Enter the IP address(es) of the DNS server(s) authorative for the domain. Step 6: Select Store this conditional forwarder in Active Directory, and replicate it as follows: Step 7: Click OK Step 8: Repeat in each forest you want to replicate to/from Coexistence ......